Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203231383539.roa
File: 3138352e3230352e3232312e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: ZdHAZw+8kfmFpmN+KCy8z2oq0TmopdqsIkHGv3yxfXE=
Subject key identifier: C4:19:78:72:19:38:36:CA:B7:FA:F4:51:98:FC:51:E8:AD:C2:8F:55
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 588B53C1D78DBB2CEAA1929FDBE926D3D479B2F0
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203231383539.roa
Signing time: Sat 06 Jan 2024 09:57:48 +0000
ROA not before: Sat 06 Jan 2024 09:52:48 +0000
ROA not after: Sat 04 Jan 2025 09:57:48 +0000
asID: 21859
IP address blocks: 185.205.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:8b:53:c1:d7:8d:bb:2c:ea:a1:92:9f:db:e9:26:d3:d4:79:b2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 6 09:52:48 2024 GMT
Not After : Jan 4 09:57:48 2025 GMT
Subject: CN=C4197872193836CAB7FAF45198FC51E8ADC28F55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:11:2a:10:90:5c:df:c9:c4:bb:90:14:bf:c0:
d7:95:da:8d:87:59:0e:0c:cd:45:a6:2b:37:6f:91:
fb:c1:c3:b8:3e:ed:36:ed:46:e0:81:d8:0d:4c:46:
f0:bc:35:1c:aa:23:a2:50:bc:ad:71:6b:93:34:a7:
1f:c1:34:5f:b3:b9:19:14:cd:0a:a3:94:68:6d:42:
48:b1:0a:03:02:dc:53:df:e9:d8:c1:56:f7:fe:fd:
49:f4:f1:3a:50:33:88:6c:01:21:59:76:c3:03:8b:
89:fe:e8:8f:88:30:fa:16:ce:09:ab:cf:be:a0:4e:
5d:a3:c7:80:16:49:72:b8:f4:f0:8c:b2:ae:68:6c:
8d:83:7c:1d:47:75:04:34:2e:ca:c9:50:cd:3e:a3:
86:e0:63:f4:34:84:0d:dd:78:0b:50:8a:96:dd:34:
6d:5d:0b:57:a8:83:02:e5:7d:b2:00:be:d9:2f:76:
de:8b:89:5d:12:3c:11:a0:db:b8:2b:9d:f1:a1:a5:
c1:89:7a:c2:44:cb:61:5e:b6:de:46:89:bb:75:ee:
d0:b6:c1:81:09:cc:93:d5:4a:ea:1a:2c:1e:e3:2a:
10:a7:60:97:64:f4:a4:fe:fa:97:7c:e7:80:1e:25:
04:a1:32:1e:19:01:62:2c:e3:d0:2a:c3:ef:d3:4e:
86:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:19:78:72:19:38:36:CA:B7:FA:F4:51:98:FC:51:E8:AD:C2:8F:55
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.221.0/24
Signature Algorithm: sha256WithRSAEncryption
01:62:d2:ee:11:6b:c2:79:6f:fb:11:4e:df:46:d2:e6:76:9d:
17:de:46:63:77:f2:53:94:58:03:93:bc:bb:d5:1d:a5:92:e0:
7b:44:1f:73:4c:38:02:77:1c:36:99:8d:d8:07:e0:1e:a2:36:
64:db:36:56:38:bc:be:d5:7e:37:f7:30:0a:82:4c:cb:a7:2c:
54:73:ce:c5:a4:70:08:08:cc:f5:19:f5:60:8a:bc:41:8d:80:
f2:d4:60:cd:f8:24:cc:bc:ae:7d:6c:8a:b1:83:1e:8f:c8:ba:
92:07:37:a8:f2:2e:c4:8f:17:d3:ae:fa:5f:47:82:d2:4a:fa:
96:cd:63:01:47:a5:40:26:cc:ef:b6:b0:27:e1:89:be:37:54:
a3:88:9e:4f:ac:ae:8e:4f:ee:e1:1f:f7:c2:73:c7:d0:1a:50:
c8:a3:a9:5e:29:2d:94:4b:9c:fe:c3:98:a2:9c:b0:d9:14:e8:
19:ca:ea:1c:c9:a2:da:24:97:1c:98:1a:62:73:85:8d:65:38:
30:b4:f3:87:b5:bb:30:9f:43:9a:de:66:52:64:3b:fd:79:94:
76:b0:ff:97:a7:bc:61:5e:50:c7:8c:ce:d4:e7:a3:92:44:23:
19:13:ae:04:5a:1a:ec:77:20:35:70:cd:25:36:63:a8:c3:0d:
15:5c:01:68
-----BEGIN CERTIFICATE-----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Generated at Tue Feb 6 03:05:39 2024 by rpki-client on console-fra.rpki-client.org